CVE-2024-45086 - CERT CVE
ID CVE-2024-45086
Sažetak IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML external entity injection (XXE) attack when processing XML data. A privileged user could exploit this vulnerability to expose sensitive information or consume memory resources.
Reference
CVSS
Base: 5.5
Impact: 4.2
Exploitability:1.2
Pristup
VektorSloženostAutentikacija
NETWORK LOW HIGH
Impact
PovjerljivostCjelovitostDostupnost
HIGH NONE LOW
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L
Zadnje važnije ažuriranje 05-11-2024 - 16:04
Objavljeno 04-11-2024 - 20:15